Mechrevo Control Console Uncontrolled Search Path Vulnerability in GCUService Component

Vulnerability

A critical vulnerability exists in Mechrevo Control Console version 1.0.2.70, specifically within the GCUService component. The issue arises from an unknown functionality in the library 'csCAPI.dll', located in 'C:\Program Files\OEM\MECHREVO Control Center\UniwillService\MyControlCenter\'. This vulnerability allows for an uncontrolled search path, which could potentially be exploited locally. However, the complexity of the attack is high, making exploitation difficult.

Impact

Exploitation of this vulnerability could lead to unauthorized manipulation of the search path, potentially allowing for the execution of malicious code or interference with the application's normal operation.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mechrevo Control Console Uncontrolled Search Path Vulnerability in GCUService Component

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating